**Secure Every Identity, from AI to Human
**Identity is the key to unlocking the potential of AI. Okta secures AI by building the trusted, neutral infrastructure that enables organizations to safely embrace this new era. This work requires a relentless drive to solve complex challenges with real-world stakes. We are looking for builders and owners who operate with speed and urgency and execute with excellence.
This is an opportunity to do career-defining work. We're all in on this mission. If you are too, let's talk.
Toronto, Canada
Staff Security Engineer
Okta is The World’s Identity Company. We free everyone to safely use any technology, anywhere, on any device or app. Our flexible and neutral products, Okta Platform and Auth0 Platform, provide secure access, authentication, and automation, placing identity at the core of business security and growth.
At Okta, we celebrate a variety of perspectives and experiences. We are not looking for someone who checks every single box - we’re looking for lifelong learners and people who can make us better with their unique experiences.
Join our team! We’re building a world where Identity belongs to you.
The Staff Security Engineer is a key role for strengthening the organization's security posture. You'll be responsible for performing security assessments of third-party integrations and connected apps, with a focus on mitigating API-related security risks. This position is vital for ensuring a "secure-by-design" approach for critical systems within the organization.
What You Will Do
- Lead Technical Security Reviews: Perform in-depth security reviews and threat modeling for complex enterprise applications and third-party integrations.
- Operationalize AI for Security: Take the lead in deploying and managing AI for Security use cases, such as integration security reviews, to automate and scale security operations.
- Risk Analysis & Documentation: Analyze and document API permissions and risk levels for major integrations (e.g., Salesforce, Slack, Google) to ensure they meet internal standards.
- Develop Workflow Processes: Collaborate with stakeholders to design and implement repeatable security review workflows, such as the Salesforce API Integration Review.
- Vulnerability & Control Gap Mitigation: Identify potential vulnerabilities and security control gaps in connected apps and recommend technical mitigation strategies to stakeholders.
- Report & Visualize Posture: Contribute to and maintain metrics and dashboards that demonstrate the organization's overall security posture for leadership.
What You Bring
- Deep Technical Expertise: Proven experience in information security, specifically within application and enterprise security domains.
- API & Integration Specialist: Strong background in assessing and mitigating risks associated with third-party APIs and connected application ecosystems.
- Advanced Security Principles: Understanding of "secure-by-design" principles and the "least privilege" model.
- Practical Threat Modeling: Hands-on experience identifying attack vectors and conducting risk assessments for complex systems.
- Tooling & AI Proficiency: Experience working with security platforms for analyzing application permissions and an interest or background in applying AI to streamline security tasks.
- Collaborative Influencer: Exceptional communication skills with a track record of aligning multiple teams toward shared security goals.
- Education: A Bachelor's degree in Computer Science, information security, or a related field.
P19562
#LI-HYBRID
Below is the annual salary range for candidates located in Canada. Your actual salary will depend on factors such as your skills, qualifications, and experience. In addition, Okta offers equity (where applicable), bonus, and benefits, including health, dental, and vision insurance, RRSP with a match, healthcare spending, telemedicine, and paid leave (including PTO and parental leave) in accordance with our applicable plans and policies. To learn more about our Total Rewards program, please visit: https://rewards.okta.com/can.
The annual base salary range for this position for candidates located in Canada is between:
$141,000—$193,000 CAD
** The Okta Experience**
- Supporting Your Well-Being
- Driving Social Impact
- Developing Talent and Fostering Connection + Community
We are intentional about connection. Our global community, spanning over 20 offices worldwide, is united by a drive to innovate. Your journey begins with an immersive, in-person onboarding experience designed to accelerate your impact and connect you to our mission and team from day one.
Okta is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, marital status, age, physical or mental disability, or status as a protected veteran. We also consider for employment qualified applicants with arrest and convictions records, consistent with applicable laws.
If reasonable accommodation is needed to complete any part of the job application, interview process, or onboarding please use this Form to request an accommodation.
Notice for New York City Applicants & Employees: Okta may use Automated Employment Decision Tools (AEDT), as defined by New York City Local Law 144, that use artificial intelligence, machine learning, or other automated processes to assist in our recruitment and hiring process. In accordance with NYC Local Law 144, if you are an applicant or employee residing in New York City, please click here to view our full NYC AEDT Notice.
Okta is committed to complying with applicable data privacy and security laws and regulations. For more information, please see our Personnel and Job Candidate Privacy Notice at https://www.okta.com/legal/personnel-policy/.